has read-write access to schema A
has read-only access to schema B
User Pete nevertheless was able to rename/move Hive table
from schema A to schema B (where he has read-only access):
alter table table_a rename to B.table_a;
Hive allows to use rename table syntax to move tables across schemas, not just rename.
Sentry does not check security boundaries in this case.